Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
jvnJapan Vulnerability NotesJVN:53768697
HistoryDec 17, 2013 - 12:00 a.m.

JVN#53768697: Android OS vulnerable to arbitrary Java method execution

2013-12-1700:00:00
Japan Vulnerability Notes
jvn.jp
21

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.036 Low

EPSS

Percentile

91.7%

JSON

Android OS contains a vulnerability where an arbitrary Java method may be executed.

Impact

When viewing a specially crafted page using the standard Android browser or an other application that uses the WebView class, Android OS may be rebooted or arbitrary code may be executed without intent from the user.

Solution

Apply an Update
Update your device according to the information provided by the provider or developer.

Products Affected

  • Android OS version 3.0 through 4.1.x

Related

myhack58 1
saint 4
hackerone 1
checkpoint_advisories 1
zdt 1
prion 2
ubuntucve 1
nvd 2
cvelist 2
android 1
cve 2
myhack58
myhack58
Millet mobile phone MIUI remote code execution vulnerability analysis-vulnerability warning-the black bar safety net
2014-08-25 00:00:00
saint
saint
Android WebView addJavascriptInterface Arbitrary Java Method Access
2014-02-11 00:00:00
Android WebView addJavascriptInterface Arbitrary Java Method Access
2014-02-11 00:00:00
Android WebView addJavascriptInterface Arbitrary Java Method Access
2014-02-11 00:00:00
hackerone
hackerone
ownCloud: Webview Vulnerablity [OwnCloudAndroid Application]
2015-09-07 11:57:09
checkpoint_advisories
checkpoint_advisories
Google Android Denial Of Service (CVE-2013-4710)
2022-05-30 00:00:00
zdt
zdt
Android 4.2 Browser and WebView - addJavascriptInterface Code Execution Exploit
2017-03-23 00:00:00
prion
prion
Server side request forgery (ssrf)
2014-03-03 04:50:00
Design/Logic Flaw
2014-03-03 04:50:00
ubuntucve
ubuntucve
CVE-2012-6636
2014-03-03 00:00:00
nvd
nvd
CVE-2012-6636
2014-03-03 04:50:46
CVE-2013-4710
2014-03-03 04:50:46
cvelist
cvelist
CVE-2012-6636
2014-03-03 02:00:00
CVE-2013-4710
2014-03-03 02:00:00
android
android
JavaScript to Java
2012-12-21 00:00:00
cve
cve
CVE-2013-4710
2014-03-03 04:50:46
CVE-2012-6636
2014-03-03 04:50:46

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.036 Low

EPSS

Percentile

91.7%

JSON
Related for JVN:53768697
myhack581saint4hackerone1checkpoint_advisories1zdt1prion2ubuntucve1nvd2cvelist2android1cve2